A practical investigation of identity theft vulnerabilities in Eduroam

Brenza, Sebastian; Pawlowski, Andre; Pöpper, Christina

doi:10.1145/2766498.2766512

Cited by 27 publications

(23 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Techniques for attacking WPA2 Enterprise supplicants that are not configured appropriately are widely known (e.g., [16,2,8,11,7]). These techniques are not a weakness of the WPA2 Enterprise family of protocols: they are an obvious consequence of using those protocols without satisfying their basic requirements.…”

Section: Discussionmentioning

confidence: 99%

“…Satisfying this requirement is extremely important. Supplicants that are not correctly configured, i.e., that do not know the DNS name of the authorization server for the enterprise network, may be easily tricked into starting an execution of the authentication protocol with an evil twin, a malicious access point that broadcasts the SSID of the enterprise network (e.g., [16,2,8,11,7]). In most configurations the protocol execution will fail, because the evil twin will not be able to authenticate itself to the supplicant as required by WPA2 Enterprise.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

(In)Secure Configuration Practices of WPA2 Enterprise Supplicants

Bartoli

Medvet

Lorenzo

et al. 2018

Proceedings of the 13th International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

WPA2 Enterprise is a fundamental technology for secure communication in enterprise wireless networks. A key requirement of this technology is that WiFi-enabled devices (i.e., supplicants) be correctly configured before connecting to the enterprise wireless network. Supplicants that are not configured correctly may fall prey of attacks aimed at stealing the network credentials very easily. Such credentials have an enormous value because they usually unlock access to all enterprise services.In this work we investigate whether users and technicians are aware of these important and widespread risks. We conducted two extensive analyses: a survey among approximately 1000 users about how they configured their WiFi devices for enterprise network access; and, a review of approximately 310 network configuration guides made available by enterprise network administrators. The results provide strong indications that the key requirement of WPA2 Enterprise is violated systematically and thus can no longer be considered realistic.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

(In)Secure Configuration Practices of WPA2 Enterprise Supplicants

Bartoli

Medvet

Lorenzo

et al. 2018

Proceedings of the 13th International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

show abstract

“…If one of the RADIUS servers in the hierarchy is down, this impacts the overall service. Identity theft vulnerabilities and MITM (Man-in-the-Middle) attacks in Eduroam have been investigated in [26], along with some possible countermeasures. Other authors [27] proposed to enhance Eduroam security via a new trust hierarchy based on RA-DIUS/TLS [28], while Liu et al [29] proposed a scheme aimed to improve Eduroam stability and performance.…”

Section: B Login and Wi-fi Access Services: Existing Solutions And Imentioning

confidence: 99%

Providing Login and Wi-Fi Access Services With the eIDAS Network: A Practical Approach

2020

View full text Add to dashboard Cite

The digital identity (or electronic identity) of a person is about being able to prove upon authentication who one is on the Internet, with a certain level of assurance, such as by means of some attributes obtained from a trustworthy Identity Provider. In Europe, the eIDAS Network allows the citizens to authenticate securely with their national credentials and to provide such personal attributes when getting access to Service Providers in a different European country. Although the eIDAS Network is more and more known, its integration with real operational services is still at an initial phase. This paper presents two eIDAS-enabled services, Login with eIDAS and Wi-Fi access with eIDAS, that we have designed, implemented, deployed, and validated at the Politecnico di Torino in Italy. The validation study involved several undergraduate students, who have run the above services with their authentication credentials and platforms and with minimal indications on their usage. The results indicate that the services were beneficial. Several advantages exist both for the users and for the Service Providers, such as resistance to some security attacks and the possibility to adopt the service without prior user registration (e.g. for short meetings, or in public places). However, some students expressed doubts about exploiting their national eID for Wi-Fi access, mainly in connection with usability and privacy issues. We discuss also these concerns, along with advantages and disadvantages of the proposed services. INDEX TERMS cross-border authentication, eIDAS Regulation, electronic identification, Login service, Wi-Fi access service.

show abstract

“…In theory, the users do not connect to rogue APs if the supplicant checks the validity of the offered certificate of the authentiaction server. However, in practice, some older versions of wpa supplicant do not check the validity of the authentication servers' certificates [19]. Even if the supplicant can check the validity, some users might accept invalid certificates.…”

Section: Security Analysismentioning

confidence: 99%

Easy-to-Deploy Wireless Mesh Network System with User Authentication and WLAN Roaming Features

Niizuma

Goto

2017

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYWireless LAN (WLAN) roaming systems, such as eduroam, enable the mutual use of WLAN facilities among multiple organizations. As a consequence of the strong demand for WLAN roaming, it is utilized not only at universities and schools but also at the venues of large events such as concerts, conferences, and sports events. Moreover, it has also been reported that WLAN roaming is useful in areas afflicted by natural disasters. This paper presents a novel WLAN roaming system over Wireless Mesh Networks (WMNs) that is useful for the use cases shown above. The proposed system is based on two methods as follows: 1) Automatic authentication path generation method decreases the WLAN roaming system deployment costs including the wiring cost and configuration cost. Although the wiring cost can be reduced by using WMN technologies, some additional configurations are still required if we want to deploy a secure user authentication mechanism (e.g. IEEE 802.1X) on WLAN systems. In the proposed system, the Access Points (APs) can act as authenticators automatically using RadSec instead of RADIUS. Therefore, the network administrators can deploy 802.1X-based authentication systems over WMNs without additional configurations on-site. 2) Local authentication method makes the system deployable in times of natural disasters, in particular when the upper network is unavailable or some authentication servers or proxies are down. In the local authentication method, users and APs can be authenticated at the WMN by locally verifying the digital certificates as the authentication credentials.

show abstract

A practical investigation of identity theft vulnerabilities in Eduroam

Cited by 27 publications

References 18 publications

(In)Secure Configuration Practices of WPA2 Enterprise Supplicants

(In)Secure Configuration Practices of WPA2 Enterprise Supplicants

Providing Login and Wi-Fi Access Services With the eIDAS Network: A Practical Approach

Easy-to-Deploy Wireless Mesh Network System with User Authentication and WLAN Roaming Features

Contact Info

Product

Resources

About